package com.example.user.interceptor;


import com.example.user.constants.JwtClaimsConstant;
import com.example.user.context.BaseContext;
import com.example.user.enums.RoleCode;
import com.example.user.properties.JwtProperties;
import com.example.user.utils.JwtUtil;
import io.jsonwebtoken.Claims;


import lombok.RequiredArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.stereotype.Component;
import org.springframework.web.servlet.HandlerInterceptor;


import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.util.HashMap;
import java.util.Map;

/**
 * jwt令牌校验的拦截器
 */
@Component
@Slf4j
@RequiredArgsConstructor
public class JwtTokenUserInterceptor implements HandlerInterceptor {

    private final JwtProperties jwtProperties;

    /**
     * 校验jwt
     *
     * @param request
     * @param response
     * @param handler
     * @return
     * @throws Exception
     */
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {

        //1、从请求头中获取令牌
        String token = request.getHeader(jwtProperties.getUserTokenName());

        //2、校验令牌
        try {
            log.info("jwt校验:{}", token);
            Claims claims = JwtUtil.parseJWT(jwtProperties.getUserSecretKey(), token);
            Long userId = Long.valueOf(claims.get(JwtClaimsConstant.USER_ID).toString());
            RoleCode permissions = (RoleCode)claims.get(JwtClaimsConstant.USER_ROLE);
            Map<String, Object> currentUser = new HashMap<>(2);
            currentUser.put(JwtClaimsConstant.USER_ID, userId);
            currentUser.put(JwtClaimsConstant.USER_ROLE, permissions);
            log.info("当前用户id：{}, 当前用户权限：{}", userId, permissions);
            BaseContext.setCurrentUser(currentUser);
            //3、通过，放行
            return true;
        } catch (Exception ex) {
            //4、不通过，响应401状态码
            response.setStatus(401);
            return false;
        }
    }

    public void afterCompletion(HttpServletRequest request, HttpServletResponse response, Object handler, Exception ex) throws Exception {
        //用完之后，清理ThreadLocal中的数据
        BaseContext.removeCurrentUser();
    }

}
